Malware spam: "Please find attached the file we spoke about yesterday" leads to Locky
Tags
| country: | France Latvia Seychelles |
| attack-pattern: | Malware - T1587.001 Malware - T1588.001 |
Common Information
| Type | Value |
|---|---|
| UUID | 9bbf5c67-e15a-44d6-9cef-6adc8b775258 |
| Fingerprint | 34c3b1f7457679e5 |
| Analysis status | DONE |
| Considered CTI value | 2 |
| Text language | |
| Published | May 23, 2016, 12:37 p.m. |
| Added to db | Jan. 18, 2023, 8:26 p.m. |
| Last updated | Sept. 2, 2024, 3:32 a.m. |
| Headline | Dynamoo's Blog |
| Title | Malware spam: "Please find attached the file we spoke about yesterday" leads to Locky |
| Detected Hints/Tags/Attributes | 16/2/53 |
Source URLs
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | Domain | 1 | oakidea.com |
|
| Details | Domain | 1 | islandflavaja.com |
|
| Details | Domain | 1 | dragqueenwig.com |
|
| Details | Domain | 1 | 4cornerbazaar.com |
|
| Details | Domain | 1 | ap-shoes.com |
|
| Details | Domain | 1 | b2cfurniture.com.au |
|
| Details | Domain | 1 | babyhalfoff.com |
|
| Details | Domain | 1 | bekith.com |
|
| Details | Domain | 1 | canalshopping.com.br |
|
| Details | Domain | 1 | ereganto.com.br |
|
| Details | Domain | 1 | farmavips.com |
|
| Details | Domain | 1 | fina-mente.com |
|
| Details | Domain | 1 | hablatinamerica.com |
|
| Details | Domain | 1 | jhplhomedecor.com |
|
| Details | Domain | 1 | joyofgiving.com.au |
|
| Details | Domain | 1 | la-mousson.de |
|
| Details | Domain | 1 | lojaonline.eurobar.pt |
|
| Details | Domain | 1 | maibey.com |
|
| Details | Domain | 1 | metallerie.com |
|
| Details | Domain | 1 | mymy365.com |
|
| Details | Domain | 1 | objetsdinterieur.com |
|
| Details | Domain | 1 | peptide-manufacturer.com |
|
| Details | Domain | 1 | pro-lnz.com |
|
| Details | Domain | 1 | promotionalsales.com.au |
|
| Details | Domain | 1 | store.steelalborz.com |
|
| Details | Domain | 1 | stylelk.com |
|
| Details | File | 1 | kla1kmqj2d.exe |
|
| Details | md5 | 1 | 0cef8d79dd32b5701768ffb3e80dd6c9 |
|
| Details | md5 | 1 | 18e1591325994d60468e58b30bd47ec7 |
|
| Details | md5 | 1 | 1e1b9729198cb392636ad4b8ec880284 |
|
| Details | md5 | 1 | 1eacf23630db85c2af07d2657c1a0917 |
|
| Details | md5 | 1 | 2742891aff1f20ee09a67d29c5b4157d |
|
| Details | md5 | 1 | 2f7373602c67761a1666c3170a0adfd9 |
|
| Details | md5 | 1 | 4f4d754ffb9b33c5b2b7ec6c38dc6a30 |
|
| Details | md5 | 1 | 517c1805c2b805a801a6132bfd9d7a69 |
|
| Details | md5 | 1 | 64eef31dc4cd4dc1ca51b6686e4cdaa1 |
|
| Details | md5 | 1 | 6fc220a8b95e2167c21d0e1f91a516cb |
|
| Details | md5 | 1 | 73552fcfff60a171965103d691679b43 |
|
| Details | md5 | 1 | 8108de8bf200d4baa62541e9eeca2ee4 |
|
| Details | md5 | 1 | 9125956e3ee99b9f59b595fcba9ac658 |
|
| Details | md5 | 1 | 9da331f4353f5b0033c162eb308a8197 |
|
| Details | md5 | 1 | a01d60682ad5fadc9018908185e8cde3 |
|
| Details | md5 | 1 | aceec3d6334e925297efc8d4232473c2 |
|
| Details | md5 | 1 | afd40dca335530ec993d9cf91be96b4c |
|
| Details | md5 | 1 | d69adb50c7f2436f5f7502f22b3a5714 |
|
| Details | md5 | 1 | dab81432d4d6241e47d7110b8d051f41 |
|
| Details | md5 | 1 | de6c020b8639fda713fbe2285dc6740c |
|
| Details | md5 | 1 | eb3391cefb6634e587b58e0d6540c7c3 |
|
| Details | md5 | 1 | fb56f158f6f4c81f7bed2a7c4490fadb |
|
| Details | IPv4 | 1 | 188.166.168.250 |
|
| Details | IPv4 | 1 | 31.41.44.45 |
|
| Details | IPv4 | 1 | 92.63.87.53 |
|
| Details | IPv4 | 1 | 176.31.47.100 |